Proceedings of the Intl. Conf. on Cryptography and Security 2014 [ICCS 2014] 



68 



Secure Data Transmission through Trusted Node 
i n M antes usi ng AO D V Routi ng Al gori th m : 

SATEM 

Dr. Indumathi J 1 , Anish A 2 

Department of Information Science and Technology, 
College of Engineering, Anna University, Chennai,Tamilnadu, India Cq* 

Abstract: To ensure fair and secure communication in Mobile Ad hoc Networks^^2^ETs), the 
applications running in these networks must be regulated by proper communicatu&po|kies. However, 
enforcing policies in MANETs is challenging because they lack the infrastructuarNarN trusted entities 
encountered in traditional distributed systems. This paper presents the design^anKimplementation of a 
policy enforcing mechanism based on trusted execution monitor built on top of U*nS«sted Platform M odule. 
Under this mechanism, each application or protocol has an associated p^y. Two instances of an 
application running on different nodes may engage in communication^^if these nodes enforce the same 
set of policies for both the application and the underlying protocq|^£^y^ the application. In this way, 
nodes can form trusted application centric networks. Before allowir^^ae to join such a network, SATEM 
(Service-aware Trusted Execution Monitor) verifies its trustwo#wte«s of enforcing the required set of 
policies. If any of them is compromised, SATEM disconnects thl©|de from the network and SH A (Secure 
Hash Algorithm) algorithm for secure transmission. We iLgnofistrate the fastidiousness of our solution 
through security analysis, and its low overhead through pfiNjffmance evaluation of the applications. 



Keywords: Wireless Ad hoc and Sensor NetwcuJ^ltobile Ad hoc Networks, Service-aware Trusted 
Execution Monitor, Self-configuring, SurvivableAH^m/e Radio Networks. 




Wireless Ad hoc and Sensor Netw^t^^isN ) are becoming an important platform in several domains, 



►Introduction 

including military warfare and mmrrSprJ and control of civilian critical infrastructure. They are especially 
attractive in scenarios where it/\pfeasible or expensive to deploy significant networking infrastructure. 
Examples in the military dto?am include monitoring of friendly and enemy forces, equipment and 
ammunition monitoringA^»King, and nuclear, biological, and chemical attack detection [C K Toh, 
(2007)]. Consider a npkras&rnetwork scenario where more powerful and less energy-constrained ad hoc 
nodes may be carrier ^soldiers or in vehicles, while a large number of low cost and low-energy sensor 
nodes with limit^d(e^rgy resources may be distributed over the battlefield [IssaKhalil, et. al, (20]0)].This 
network setuorti^kguide a troop of soldiers to move through the battlefield by detecting and locating 
enemy tank^S^i troops. The soldiers can use information collected by the sensor nodes to strategically 
position *q^rPhimize any possible causality. Examples in the civilian domain include habitat monitoring, 
animalftNcKinq, forest fire detection, disaster relief and rescue, oil industry management, and traffic 
Td monitoring [Issa Khalil, et. al, (20B)]. 




MANET is a special class of ad hoc network. The concept of ad-hoc networks which was founded in early 
70'sand it has three generations [AN Bazghandi, et. al, (20U)]. 

In First generation they were called PRNET (Packet Radio Networks). In conjunction with ALOHA (Areal 
Locations of Hazardous Atmospheres) and CSMA (Carrier Sense Medium Access), approaches for medium 
access control and a kind of distance-vector routing PRNET were used on a trial basis to provide different 
networking capabilities in a combat environment. 
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The second generation of ad-hoc networks emerged in 1980s, when the ad-hoc network systems were 
further enhanced and implemented as a part of the SU RAN (Survivable Adaptive Radio Networks) program. 
This provided a packet-switched network to the mobile battlefield in an environment without 
infrastructure. This program proved to be beneficial in improving the radios' performance by making them 
smaller, cheaper, and resilient to electronic attacks. 



In the 1990s, the third generation of commercial ad-hoc networks arrived with notebook computers and 
other viable communications equipment. At the same time, the idea of a collection of mobile nodes was 
proposed at several research conferences. 

The IEEE 802.11 subcommittee had adopted the term "ad-hoc networks" and the research comj^aun^ I 
started to look into the possibility of deploying ad-hoc networks in other areas of application^ 




Figure IMobil 




'had 



)c Network 



A mobile ad-hoc network (MANET) is a self-corTftguring infrastructure less network of mobile devices 
connected by wireless links shown in Figura^/Hl hoc is a Latin word and it means "for this purpose". Each 
device in a MANET is free to move independently in any direction, and will therefore change its links to 
other devices frequently. Each mustfc#\l{ara traffic unrelated to its own use, and therefore be a router. The 
primary challenge in building a MAHtxs equipping each device to continuously maintain the information 
required to properly route traffftkSuch networks may operate by themselves or may be connected to the 
larger Internet [L. Zhou, et. aU^g^)]. 



MANET's area kind of wjfe\p?ad hoc networks that usually has a routable networking environment on top 
of a Link Layer ad ho^HOTfrork. The growth of usage of laptops and 802.I1/Wi-Fi wireless networking has 
made MAN ETs a papuCrresearch topic since the mid-1990s. M any academic papers evaluate protocols and 
their abilities, asSAiiwg varying degrees of mobility within abounded space, usually with all nodes within a 
few hops of e^nv^her [Kannan Govindan, et. al, (2011)]. Different protocols are then evaluated based on 
measure sus^mhe packet drop rate, the overhead introduced by the routing protocol, end-to-end packet 
delays,^a$<Jfc)rk throughput etc., [Kannan Govindan, et. al, (2011)]. So, finding appropriate routing protocol 
lad hoc network is a challenging task and also the routing protocol with less packet drop is a 
i task for the researchers because MAN ETs is high mobility. 

This paper presents the design and implementation of a policy mechanism SATEM for secure data 
transmission in mobile ad hoc network with reduced packet loss, SATAM works based on a kernel-level 
trusted execution monitor. Under this mechanism, each MANET node follow the policy mechanism then 
only the node will be added in the network otherwise the node will be discarded. Since an application may 
depend on other applications, our policy enforcing mechanism creates a trusted node. The AODV routing 
algorithm is used to perform in secure routing in mobility nodes and the data security handled by SHA 
algorithm. 
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2. Trusted Node using SATEM 
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Figure 2 Connecting Trusted Node 



Identifying trusted node is a type of security management system fan 
gathers and analyzes information from various areas within a corn^^ 
security breaches, which include both intrusions (attacks fromcNsh 

(attacks from within the organization). SATEM uses vulnerabjjfaJcJssessment (sometimes referred to as 
scanning), which is a technology developed to assess the secuxityW^ computer system or network. 




liters and networks. SATEM 
a network to identify possible 
e the organization) and misuse 




Unselfish Sharing: Each node simultaneously posts^auewes, answers queries, receives responses, and 
forwards queries for others. To benefit all nodes irvMawetwork, it is vital to ensure that enough nodes 
respond to and relay the queries posted by others^ft^lar concerns exist in other applications such as a P2P 
file sharing network, where sufficient file providef^are desired. To achieve these goals, each node must 
abide by a policy, like the following beforej^t^g the network. In SATEM, the first step is to establish the 

>l^rte boot sequence, starting from theTPM , measures the integrity 
control. 



trusted computing base that includes thf^WsVed agent and the entire OS kernel. This process involves a 
trusted boot, in which each componenifc^ 1 ™* 
of the next one before handing over»x c 



Request to join the network: Wd»e A sends a join request to Node B by specifying the application identity 
(e.g., the I P address and ror^Jnber) and receives a request for a guarantee of trusted enforcement of the 
tier policy. Oh^ 

Deliver the Ackr If node B is in the communication range then the Node B send the 

Acknowledgeme^So/he Node A. 

Evaluate ttj^SoMcy: Once Node A received the acknowledgement first authenticates and verifies the 
integrityffiyie commitments and attestation. Then, it verifies the system commitment, the enforcement, 
and^hjyMot attestation in the SATEM report against the local trust policy before accepting Node B to 
ti^tiaTrom the boot attestation, the member node learns that the requesting node has been booted into 
a tNwed SATEM kernel. Knowing the system commitment convinces the member node that the kernel of 
the requesting node will not load untrusted modules, which protects the trusted agent from being 
tampered with. Knowing the enforcement convinces it that the enforcer software execution stack on the 
requesting node is trusted because the trusted agent will enforce the commitment to prevent untrusted 
code from being loaded by the enforcer. 



Grant permission to join: The SATEM finds if node B is a trusted node then node A send the request to 
join the network and if node B accepts then the communication will take place. 
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3. Secure Routing using AO DV 



The reactive routing protocol which eliminates broad storm problem is Ad-Hoc On- Demand Distance 
Vector (AODV) routing protocol which builds on the DSDV algorithm. The AODV is an improvement on 
DSDV because it typically minimizes the number of required broadcasts by creating routes on an on- 
demand basis, as opposed to maintaining a complete list of routes as in the DSDV algorithm. The authors 
(C K Toh) of AODV classify it as a pure on-demand route acquisition system, as nodes that are not on a 
selected path do not maintain routing information or participate in routing table exchanges [C K Toh, 
(2007)]. 



Node 
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B 


AODV 






SATEM 







Figure 3 Establishin 




d Routing Path 



The AO DV Routing protocol uses an on-demancf>|s^rbach for finding routes, that is, a route is established 
only when it is required by a source node fa^^insmitting data packets. It employs destination sequence 
numbers to identify the most recent patt^Nhe major difference between AODV and Dynamic Source 
Routing (DSR) stems out from the factftnjrDSR uses source routing in which a data packet carries the 
complete path to be traversed. Ho'Ci&M'fi AODV, the source node and the intermediate nodes store the 
next-hop information corresportdingNe each flow for data packet transmission. In an on-demand routing 
protocol, the source node floodgate Route Request packet in the network when a route is not available for 
the desired destination. It^^Jjrain multiple routes to different destinations from a single Route Request. 

The major difference Jwj^een AODV and other on-demand routing protocols is that it uses a destination 
sequence number CfiJs^eqN urn) to determine an up-to-date path to the destination. A node updates its 
path informatid^mJ/if the DestSeqNum of the current packet received is greater or equal than the last 
DestSeqNum Jtfo^l at the node with smaller hop count. A Route Request carries the source identifier 
(SrcID), thei^ti nation identifier (DestID), the source sequence number (SrcSeqNum), the destination 
sequencg*™mber (DestSeqNum), the broadcast identifier (BcastID), and the time to live (TTL) field. 
DesjSeEN\m indicates the freshness of the route that is accepted by the source. When an intermediate 
n^eleceives a Route Request, it either forwards it or prepares a Route Reply if it has a valid route to the 
deslypration. The validity of a route at the intermediate node is determined by comparing the sequence 
number at the intermediate node with the destination sequence number in the Route Request packet. 



If a Route Request is received multiple times, which is indicated by the BcastlD-SrcID pair, the duplicate 
copies are discarded. All intermediate nodes having valid routes to the destination, or the destination node 
itself, are allowed to send Route Reply packets to the source. Every intermediate node, while forwarding a 
Route Request, enters the previous node address and its BcastID. A timer is used to delete this entry in case 
a Route Reply is not received before the timer expires. This helps in storing an active path at the 



ICCS 2014 



ISBN : 978-81 -925233-5-4 



www.edlib.asdf.res.in / www.iccs.asdf.res.in 



Proceedings of the Intl. Conf. on Cryptography and Security 2014 [ICCS 2014] 



72 



intermediate node as AO DV does not employ source routing of data packets. W hen a node receives a Route 
Reply packet, information about the previous node from which the packet was received is also stored in 
order to forward the data packet to this next node as the next hop toward the destination. 

The AODV Protocol eliminates broad storm problem using weighted persistence scheme. The Packets are 
rebroadcasted with the probabilistic approach. The number of rebroadcasts are reduced therefore broad 
cast success rate is increased. 



4. Secure Data Transmitting using SH A 

MANET has no centralized infrastructure or administrator, so key management is a challen 
MANET. Key management includes key generation, key distribution and key mai 




e. Key 
ublic Key 



management protocol can be divided into two categories Private Key Management 
Management. Private Key management protocol establishes private key or secret <6ey"Xat is used in 
symmetric-key cryptography. The public key management protocol provides a pair M^^private/public) 
used for asymmetric key cryptography. 

Symmetric-key cryptography is more efficient than asymmetric key cryptograifr^Vowever it needs a shared 
secret key between two communicating nodes. We need to set up n. snared secret keys if n is the 

size of network. Every node must have a mechanism to securely store^H£3^ed secret for each other nodes 
in the network. Since nodes in the ad-hoc network are resource o^^ined, key setup is an expensive 
operation. A variety of mechanisms can be used to set up shaad^ecret key between two nodes. For 
example, shared secret keys can be preloaded between all ^^interested parties before the start of 
communication possibly through physical contact. + 

A trusted third party also known as key-distribution ce#t«(KDC) can be used. Key distribution center first 
shares a secret key with each node and then seri^sV secret key between two parties. If public key 
infrastructure (PKI) is present, the key can be en«i^wd with each participant's public key and transported 
to them. The two communicating party can Jt^ate a secret key between themselves using symmetric key 



agreement schemes. The most common 
digest of any sized file or input. In cons] 
in fact sharing some of the initial 



of 2 64 -lbits. 




key agreement schemes use SHA.SHA1 outputs a 160bit 
t is similar to the previous M D4 and M D5 hash functions, 
uses a 512 bit block size and has a maximum message size 
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SHA1 Algorithm 



3p<OR 



• Padding 

o Pad the message with a single one followed by zeroes until the final block has 448 bits, 
o Append the size of the original message as an unsigned 64 bit integer. 

• Initialize the 5 hash blocks (h0,h],h2,h3,h4) to the specific constants defined intheSHAl 
Standard. 

• Hash (for each 5Ebit Block) 
o Allocate an 80 word array for the message schedule 

■ set the first 16 words to bethe512bit block split into 16 words. 

■ the rest of the words are generated using the following algorithm word»[i; 
word [i8] XOR word [il4]XOR word [i!6] then rotated lbit to the left. r>0 

o Loop 80 times doing the following. # ^c) 

■ Calculate SHA function () and the constant K (these are based qri tif^current count 
Number. 

■ e=d 

■ d=c 

■ c=b (rotated left 30) 

■ b=a 

■ a =a (rotated left 5) +SHA function () +e +k +wo{ 

o Add a, b, c, d and e to the hash output. 

• Output the concatenation (hO, hi h2, h3, h4) which is the rfes&ge digest. 



5. Simulation Eval 



We conduct a series of experiments to evaluate 
transmission. This can be done using NS-2 simulati 
number of connections and number of nodes, 
number of node (50), speed(25m/s), maxi 



,6 




itjffi 



Tormance and packet loss during the data 
using three parameter to evaluate pause time, 
larameter have constants they are, for pause time 
inection (25), for number of connection number of 



nodes(50), speed(25m/s), pause time(0) arfC^oV the number of nodes pause time(Os), maximum speed 
(Dm/s), maximum connections (D). "U^^^to create the MANET environment, we use the following 
constants as simulation area (1000S6QC fl^BR traffic type is used for traffic, packet size (512bytes), packet 
rates (4 packet/s), and maximum coX^tion (25). 
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Figure 5 Varying PauseTime(0, DO, 200, 300, 400), (a) Packet Loss Vs Pause time, (b) Routing Overhead Vs 
Pause Time 
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By varying the pause time, the packet loss and the routing overhead will reduced shown in Figure 5.1 
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Figure 6. Varying Maximum Connections (5-40), (a) Packet Loss Vs Maf^ennections, (b) Routing 
Overhead Vs M ax Connections ♦ 

By varying the maximum connections, the packet loss will be r^H^a but the routing overhead will 
gradually increase shown in Figure 5.2 
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Figure 7 Varyin^ta/Of Nodes (5-40), (a) Packet Loss Vs Number of Nodes (b) Routing Overhead Vs 
Number of NLafie 

By varyirfOpi number of nodes in the network, the packet loss and routing overhead will be gradually 
incjifiaf^own in Figure 5.3. 

Ac^^ing to the simulation result, we have a better routing overhead and reduced packet loss based on 
three different parameter. 



6. Result and Discussion 



In the simulation, we used the NS-2 simulator to evaluate how the overhead and reduce the packet loss in 
creating the trusted multi-tier network and enforcing the policies varies in complex M ANETs with different 
mobility scenarios. Here, SATEM only ensures that a protected service cannot load untrusted code from the 
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disk. Here the main problem is unable to tackle attacks, like buffer overflow, that can cause the protected 
service to run arbitrary code without changing its disk image. 

SATEM only mitigates the problem in two aspects. First, SATEM may reveal the code that has known buffer 
overflow vulnerabilities by attesting it to the user. Hence, the user can avoid trusting the vulnerable code. 
Second, in the case of a successful buffer overflow attack, the attacker runs her own code on the service 
stack without being caught by SATEM . 

7. Conclusion 

This paper presented a policy enforcement mechanism based on SATEM for MANETs to enforce^^jre 
communication in mobile ad hoc network. Under this mechanism, each MANET application Iwsjfcrown 
policy. All nodes support and enforcing its policy form a trusted application centric network^yl^ytrusted 
nodes are allowed to join the network. Moreover, communication between them is regulat^l^lhe policies 
each tier. To ensure trusted policy enforcement, we augment each node with a trusted kefcael agent. The 
nodes are communicated based on the path selected by the secure routing protocol i^da^ta SH A secured 
the data. We evaluated the method through a prototype based on an IEEE 802,1^^ hoc network and 
through network simulations. The results demonstrate the feasibility of the pj^jB^i method (secure data 
transmission using SATEM) as well as its low overhead. 
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